<!DOCTYPE HTML>

<html lang="en">
<head>

<title>HttpSessionSecurityContextRepository (spring-security-docs 5.6.3 API)</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="Style">
<link rel="stylesheet" type="text/css" href="../../../../../jquery/jquery-ui.css" title="Style">
<script type="text/javascript" src="../../../../../script.js"></script>
<script type="text/javascript" src="../../../../../jquery/jszip/dist/jszip.min.js"></script>
<script type="text/javascript" src="../../../../../jquery/jszip-utils/dist/jszip-utils.min.js"></script>
<!--[if IE]>
<script type="text/javascript" src="../../../../../jquery/jszip-utils/dist/jszip-utils-ie.min.js"></script>
<![endif]-->
<script type="text/javascript" src="../../../../../jquery/jquery-3.5.1.js"></script>
<script type="text/javascript" src="../../../../../jquery/jquery-ui.js"></script>
</head>
<body>
<script type="text/javascript"><!--
    try {
        if (location.href.indexOf('is-external=true') == -1) {
            parent.document.title="HttpSessionSecurityContextRepository (spring-security-docs 5.6.3 API)";
        }
    }
    catch(err) {
    }
//-->
var data = {"i0":10,"i1":10,"i2":10,"i3":10,"i4":10,"i5":10,"i6":10,"i7":10};
var tabs = {65535:["t0","All Methods"],2:["t2","Instance Methods"],8:["t4","Concrete Methods"]};
var altColor = "altColor";
var rowColor = "rowColor";
var tableTab = "tableTab";
var activeTableTab = "activeTableTab";
var pathtoroot = "../../../../../";
var useModuleDirectories = true;
loadScripts(document, 'script');</script>
<noscript>
<div>JavaScript is disabled on your browser.</div>
</noscript>
<header role="banner">
<nav role="navigation">
<div class="fixedNav">

<div class="topNav"><a id="navbar.top">

</a>
<div class="skipNav"><a href="HttpSessionSecurityContextRepository.html#skip.navbar.top" title="Skip navigation links">Skip navigation links</a></div>
<a id="navbar.top.firstrow">

</a>
<ul class="navList" title="Navigation">
<li><a href="../../../../../index.html">Overview</a></li>
<li><a href="package-summary.html">Package</a></li>
<li class="navBarCell1Rev">Class</li>
<li><a href="package-tree.html">Tree</a></li>
<li><a href="../../../../../deprecated-list.html">Deprecated</a></li>
<li><a href="../../../../../index-all.html">Index</a></li>
<li><a href="../../../../../help-doc.html">Help</a></li>
</ul>
</div>
<div class="subNav">
<ul class="navList" id="allclasses_navbar_top">
<li><a href="../../../../../allclasses.html">All&nbsp;Classes</a></li>
</ul>
<ul class="navListSearch">
<li><label for="search">SEARCH:</label>
<input type="text" id="search" value="search" disabled="disabled">
<input type="reset" id="reset" value="reset" disabled="disabled">
</li>
</ul>
<div>
<script type="text/javascript"><!--
  allClassesLink = document.getElementById("allclasses_navbar_top");
  if(window==top) {
    allClassesLink.style.display = "block";
  }
  else {
    allClassesLink.style.display = "none";
  }
  //-->
</script>
<noscript>
<div>JavaScript is disabled on your browser.</div>
</noscript>
</div>
<div>
<ul class="subNavList">
<li>Summary:&nbsp;</li>
<li>Nested&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#field.summary">Field</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#constructor.summary">Constr</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#method.summary">Method</a></li>
</ul>
<ul class="subNavList">
<li>Detail:&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#field.detail">Field</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#constructor.detail">Constr</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#method.detail">Method</a></li>
</ul>
</div>
<a id="skip.navbar.top">

</a></div>

</div>
<div class="navPadding">&nbsp;</div>
<script type="text/javascript"><!--
$('.navPadding').css('padding-top', $('.fixedNav').css("height"));
//-->
</script>
</nav>
</header>

<main role="main">
<div class="header">
<div class="subTitle"><span class="packageLabelInType">Package</span>&nbsp;<a href="package-summary.html">org.springframework.security.web.context</a></div>
<h2 title="Class HttpSessionSecurityContextRepository" class="title">Class HttpSessionSecurityContextRepository</h2>
</div>
<div class="contentContainer">
<ul class="inheritance">
<li>java.lang.Object</li>
<li>
<ul class="inheritance">
<li>org.springframework.security.web.context.HttpSessionSecurityContextRepository</li>
</ul>
</li>
</ul>
<div class="description">
<ul class="blockList">
<li class="blockList">
<dl>
<dt>All Implemented Interfaces:</dt>
<dd><code><a href="SecurityContextRepository.html" title="interface in org.springframework.security.web.context">SecurityContextRepository</a></code></dd>
</dl>
<hr>
<pre>public class <span class="typeNameLabel">HttpSessionSecurityContextRepository</span>
extends java.lang.Object
implements <a href="SecurityContextRepository.html" title="interface in org.springframework.security.web.context">SecurityContextRepository</a></pre>
<div class="block">A <code>SecurityContextRepository</code> implementation which stores the security context in
the <code>HttpSession</code> between requests.
<p>
The <code>HttpSession</code> will be queried to retrieve the <code>SecurityContext</code> in the
<tt>loadContext</tt> method (using the key <a href="HttpSessionSecurityContextRepository.html#SPRING_SECURITY_CONTEXT_KEY"><code>SPRING_SECURITY_CONTEXT_KEY</code></a> by
default). If a valid <code>SecurityContext</code> cannot be obtained from the
<code>HttpSession</code> for whatever reason, a fresh <code>SecurityContext</code> will be
created by calling by <a href="../../core/context/SecurityContextHolder.html#createEmptyContext()"><code>SecurityContextHolder.createEmptyContext()</code></a> and this
instance will be returned instead.
<p>
When <tt>saveContext</tt> is called, the context will be stored under the same key,
provided
<ol>
<li>The value has changed</li>
<li>The configured <tt>AuthenticationTrustResolver</tt> does not report that the
contents represent an anonymous user</li>
</ol>
<p>
With the standard configuration, no <code>HttpSession</code> will be created during
<tt>loadContext</tt> if one does not already exist. When <tt>saveContext</tt> is called
at the end of the web request, and no session exists, a new <code>HttpSession</code> will
<b>only</b> be created if the supplied <code>SecurityContext</code> is not equal to an empty
<code>SecurityContext</code> instance. This avoids needless <code>HttpSession</code>
creation, but automates the storage of changes made to the context during the request.
Note that if <a href="SecurityContextPersistenceFilter.html" title="class in org.springframework.security.web.context"><code>SecurityContextPersistenceFilter</code></a> is configured to eagerly create
sessions, then the session-minimisation logic applied here will not make any
difference. If you are using eager session creation, then you should ensure that the
<tt>allowSessionCreation</tt> property of this class is set to <tt>true</tt> (the
default).
<p>
If for whatever reason no <code>HttpSession</code> should <b>ever</b> be created (for
example, if Basic authentication is being used or similar clients that will never
present the same <code>jsessionid</code>), then <a href="HttpSessionSecurityContextRepository.html#setAllowSessionCreation(boolean)"><code>allowSessionCreation</code></a> should be set to <code>false</code>. Only do this if you really
need to conserve server memory and ensure all classes using the
<code>SecurityContextHolder</code> are designed to have no persistence of the
<code>SecurityContext</code> between web requests.</div>
<dl>
<dt><span class="simpleTagLabel">Since:</span></dt>
<dd>3.0</dd>
</dl>
</li>
</ul>
</div>
<div class="summary">
<ul class="blockList">
<li class="blockList">

<section role="region">
<ul class="blockList">
<li class="blockList"><a id="field.summary">

</a>
<h3>Field Summary</h3>
<table class="memberSummary">
<caption><span>Fields</span><span class="tabEnd">&nbsp;</span></caption>
<tr>
<th class="colFirst" scope="col">Modifier and Type</th>
<th class="colSecond" scope="col">Field</th>
<th class="colLast" scope="col">Description</th>
</tr>
<tr class="altColor">
<td class="colFirst"><code>protected org.apache.commons.logging.Log</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#logger">logger</a></span></code></th>
<td class="colLast">&nbsp;</td>
</tr>
<tr class="rowColor">
<td class="colFirst"><code>static java.lang.String</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#SPRING_SECURITY_CONTEXT_KEY">SPRING_SECURITY_CONTEXT_KEY</a></span></code></th>
<td class="colLast">
<div class="block">The default key under which the security context will be stored in the session.</div>
</td>
</tr>
</table>
</li>
</ul>
</section>

<section role="region">
<ul class="blockList">
<li class="blockList"><a id="constructor.summary">

</a>
<h3>Constructor Summary</h3>
<table class="memberSummary">
<caption><span>Constructors</span><span class="tabEnd">&nbsp;</span></caption>
<tr>
<th class="colFirst" scope="col">Constructor</th>
<th class="colLast" scope="col">Description</th>
</tr>
<tr class="altColor">
<th class="colConstructorName" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#%3Cinit%3E()">HttpSessionSecurityContextRepository</a></span>()</code></th>
<td class="colLast">&nbsp;</td>
</tr>
</table>
</li>
</ul>
</section>

<section role="region">
<ul class="blockList">
<li class="blockList"><a id="method.summary">

</a>
<h3>Method Summary</h3>
<table class="memberSummary">
<caption><span id="t0" class="activeTableTab"><span>All Methods</span><span class="tabEnd">&nbsp;</span></span><span id="t2" class="tableTab"><span><a href="javascript:show(2);">Instance Methods</a></span><span class="tabEnd">&nbsp;</span></span><span id="t4" class="tableTab"><span><a href="javascript:show(8);">Concrete Methods</a></span><span class="tabEnd">&nbsp;</span></span></caption>
<tr>
<th class="colFirst" scope="col">Modifier and Type</th>
<th class="colSecond" scope="col">Method</th>
<th class="colLast" scope="col">Description</th>
</tr>
<tr id="i0" class="altColor">
<td class="colFirst"><code>boolean</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#containsContext(javax.servlet.http.HttpServletRequest)">containsContext</a></span>&#8203;(javax.servlet.http.HttpServletRequest&nbsp;request)</code></th>
<td class="colLast">
<div class="block">Allows the repository to be queried as to whether it contains a security context
for the current request.</div>
</td>
</tr>
<tr id="i1" class="rowColor">
<td class="colFirst"><code>protected <a href="../../core/context/SecurityContext.html" title="interface in org.springframework.security.core.context">SecurityContext</a></code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#generateNewContext()">generateNewContext</a></span>()</code></th>
<td class="colLast">
<div class="block">By default, calls <a href="../../core/context/SecurityContextHolder.html#createEmptyContext()"><code>SecurityContextHolder.createEmptyContext()</code></a> to obtain a
new context (there should be no context present in the holder when this method is
called).</div>
</td>
</tr>
<tr id="i2" class="altColor">
<td class="colFirst"><code><a href="../../core/context/SecurityContext.html" title="interface in org.springframework.security.core.context">SecurityContext</a></code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#loadContext(org.springframework.security.web.context.HttpRequestResponseHolder)">loadContext</a></span>&#8203;(<a href="HttpRequestResponseHolder.html" title="class in org.springframework.security.web.context">HttpRequestResponseHolder</a>&nbsp;requestResponseHolder)</code></th>
<td class="colLast">
<div class="block">Gets the security context for the current request (if available) and returns it.</div>
</td>
</tr>
<tr id="i3" class="rowColor">
<td class="colFirst"><code>void</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#saveContext(org.springframework.security.core.context.SecurityContext,javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse)">saveContext</a></span>&#8203;(<a href="../../core/context/SecurityContext.html" title="interface in org.springframework.security.core.context">SecurityContext</a>&nbsp;context,
javax.servlet.http.HttpServletRequest&nbsp;request,
javax.servlet.http.HttpServletResponse&nbsp;response)</code></th>
<td class="colLast">
<div class="block">Stores the security context on completion of a request.</div>
</td>
</tr>
<tr id="i4" class="altColor">
<td class="colFirst"><code>void</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#setAllowSessionCreation(boolean)">setAllowSessionCreation</a></span>&#8203;(boolean&nbsp;allowSessionCreation)</code></th>
<td class="colLast">
<div class="block">If set to true (the default), a session will be created (if required) to store the
security context if it is determined that its contents are different from the
default empty context value.</div>
</td>
</tr>
<tr id="i5" class="rowColor">
<td class="colFirst"><code>void</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#setDisableUrlRewriting(boolean)">setDisableUrlRewriting</a></span>&#8203;(boolean&nbsp;disableUrlRewriting)</code></th>
<td class="colLast">
<div class="block">Allows the use of session identifiers in URLs to be disabled.</div>
</td>
</tr>
<tr id="i6" class="altColor">
<td class="colFirst"><code>void</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#setSpringSecurityContextKey(java.lang.String)">setSpringSecurityContextKey</a></span>&#8203;(java.lang.String&nbsp;springSecurityContextKey)</code></th>
<td class="colLast">
<div class="block">Allows the session attribute name to be customized for this repository instance.</div>
</td>
</tr>
<tr id="i7" class="rowColor">
<td class="colFirst"><code>void</code></td>
<th class="colSecond" scope="row"><code><span class="memberNameLink"><a href="HttpSessionSecurityContextRepository.html#setTrustResolver(org.springframework.security.authentication.AuthenticationTrustResolver)">setTrustResolver</a></span>&#8203;(<a href="../../authentication/AuthenticationTrustResolver.html" title="interface in org.springframework.security.authentication">AuthenticationTrustResolver</a>&nbsp;trustResolver)</code></th>
<td class="colLast">
<div class="block">Sets the <a href="../../authentication/AuthenticationTrustResolver.html" title="interface in org.springframework.security.authentication"><code>AuthenticationTrustResolver</code></a> to be used.</div>
</td>
</tr>
</table>
<ul class="blockList">
<li class="blockList"><a id="methods.inherited.from.class.java.lang.Object">

</a>
<h3>Methods inherited from class&nbsp;java.lang.Object</h3>
<code>clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait</code></li>
</ul>
</li>
</ul>
</section>
</li>
</ul>
</div>
<div class="details">
<ul class="blockList">
<li class="blockList">

<section role="region">
<ul class="blockList">
<li class="blockList"><a id="field.detail">

</a>
<h3>Field Detail</h3>
<a id="SPRING_SECURITY_CONTEXT_KEY">

</a>
<ul class="blockList">
<li class="blockList">
<h4>SPRING_SECURITY_CONTEXT_KEY</h4>
<pre>public static final&nbsp;java.lang.String SPRING_SECURITY_CONTEXT_KEY</pre>
<div class="block">The default key under which the security context will be stored in the session.</div>
<dl>
<dt><span class="seeLabel">See Also:</span></dt>
<dd><a href="../../../../../constant-values.html#org.springframework.security.web.context.HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY">Constant Field Values</a></dd>
</dl>
</li>
</ul>
<a id="logger">

</a>
<ul class="blockListLast">
<li class="blockList">
<h4>logger</h4>
<pre>protected final&nbsp;org.apache.commons.logging.Log logger</pre>
</li>
</ul>
</li>
</ul>
</section>

<section role="region">
<ul class="blockList">
<li class="blockList"><a id="constructor.detail">

</a>
<h3>Constructor Detail</h3>
<a id="&lt;init&gt;()">

</a>
<ul class="blockListLast">
<li class="blockList">
<h4>HttpSessionSecurityContextRepository</h4>
<pre>public&nbsp;HttpSessionSecurityContextRepository()</pre>
</li>
</ul>
</li>
</ul>
</section>

<section role="region">
<ul class="blockList">
<li class="blockList"><a id="method.detail">

</a>
<h3>Method Detail</h3>
<a id="loadContext(org.springframework.security.web.context.HttpRequestResponseHolder)">

</a>
<ul class="blockList">
<li class="blockList">
<h4>loadContext</h4>
<pre class="methodSignature">public&nbsp;<a href="../../core/context/SecurityContext.html" title="interface in org.springframework.security.core.context">SecurityContext</a>&nbsp;loadContext&#8203;(<a href="HttpRequestResponseHolder.html" title="class in org.springframework.security.web.context">HttpRequestResponseHolder</a>&nbsp;requestResponseHolder)</pre>
<div class="block">Gets the security context for the current request (if available) and returns it.
<p>
If the session is null, the context object is null or the context object stored in
the session is not an instance of <code>SecurityContext</code>, a new context object
will be generated and returned.</div>
<dl>
<dt><span class="overrideSpecifyLabel">Specified by:</span></dt>
<dd><code><a href="SecurityContextRepository.html#loadContext(org.springframework.security.web.context.HttpRequestResponseHolder)">loadContext</a></code>&nbsp;in interface&nbsp;<code><a href="SecurityContextRepository.html" title="interface in org.springframework.security.web.context">SecurityContextRepository</a></code></dd>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>requestResponseHolder</code> - holder for the current request and response for which
the context should be loaded.</dd>
<dt><span class="returnLabel">Returns:</span></dt>
<dd>The security context which should be used for the current request, never
null.</dd>
</dl>
</li>
</ul>
<a id="saveContext(org.springframework.security.core.context.SecurityContext,javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse)">

</a>
<ul class="blockList">
<li class="blockList">
<h4>saveContext</h4>
<pre class="methodSignature">public&nbsp;void&nbsp;saveContext&#8203;(<a href="../../core/context/SecurityContext.html" title="interface in org.springframework.security.core.context">SecurityContext</a>&nbsp;context,
                        javax.servlet.http.HttpServletRequest&nbsp;request,
                        javax.servlet.http.HttpServletResponse&nbsp;response)</pre>
<div class="block"><span class="descfrmTypeLabel">Description copied from interface:&nbsp;<code><a href="SecurityContextRepository.html#saveContext(org.springframework.security.core.context.SecurityContext,javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse)">SecurityContextRepository</a></code></span></div>
<div class="block">Stores the security context on completion of a request.</div>
<dl>
<dt><span class="overrideSpecifyLabel">Specified by:</span></dt>
<dd><code><a href="SecurityContextRepository.html#saveContext(org.springframework.security.core.context.SecurityContext,javax.servlet.http.HttpServletRequest,javax.servlet.http.HttpServletResponse)">saveContext</a></code>&nbsp;in interface&nbsp;<code><a href="SecurityContextRepository.html" title="interface in org.springframework.security.web.context">SecurityContextRepository</a></code></dd>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>context</code> - the non-null context which was obtained from the holder.</dd>
</dl>
</li>
</ul>
<a id="containsContext(javax.servlet.http.HttpServletRequest)">

</a>
<ul class="blockList">
<li class="blockList">
<h4>containsContext</h4>
<pre class="methodSignature">public&nbsp;boolean&nbsp;containsContext&#8203;(javax.servlet.http.HttpServletRequest&nbsp;request)</pre>
<div class="block"><span class="descfrmTypeLabel">Description copied from interface:&nbsp;<code><a href="SecurityContextRepository.html#containsContext(javax.servlet.http.HttpServletRequest)">SecurityContextRepository</a></code></span></div>
<div class="block">Allows the repository to be queried as to whether it contains a security context
for the current request.</div>
<dl>
<dt><span class="overrideSpecifyLabel">Specified by:</span></dt>
<dd><code><a href="SecurityContextRepository.html#containsContext(javax.servlet.http.HttpServletRequest)">containsContext</a></code>&nbsp;in interface&nbsp;<code><a href="SecurityContextRepository.html" title="interface in org.springframework.security.web.context">SecurityContextRepository</a></code></dd>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>request</code> - the current request</dd>
<dt><span class="returnLabel">Returns:</span></dt>
<dd>true if a context is found for the request, false otherwise</dd>
</dl>
</li>
</ul>
<a id="generateNewContext()">

</a>
<ul class="blockList">
<li class="blockList">
<h4>generateNewContext</h4>
<pre class="methodSignature">protected&nbsp;<a href="../../core/context/SecurityContext.html" title="interface in org.springframework.security.core.context">SecurityContext</a>&nbsp;generateNewContext()</pre>
<div class="block">By default, calls <a href="../../core/context/SecurityContextHolder.html#createEmptyContext()"><code>SecurityContextHolder.createEmptyContext()</code></a> to obtain a
new context (there should be no context present in the holder when this method is
called). Using this approach the context creation strategy is decided by the
<a href="../../core/context/SecurityContextHolderStrategy.html" title="interface in org.springframework.security.core.context"><code>SecurityContextHolderStrategy</code></a> in use. The default implementations will
return a new <tt>SecurityContextImpl</tt>.</div>
<dl>
<dt><span class="returnLabel">Returns:</span></dt>
<dd>a new SecurityContext instance. Never null.</dd>
</dl>
</li>
</ul>
<a id="setAllowSessionCreation(boolean)">

</a>
<ul class="blockList">
<li class="blockList">
<h4>setAllowSessionCreation</h4>
<pre class="methodSignature">public&nbsp;void&nbsp;setAllowSessionCreation&#8203;(boolean&nbsp;allowSessionCreation)</pre>
<div class="block">If set to true (the default), a session will be created (if required) to store the
security context if it is determined that its contents are different from the
default empty context value.
<p>
Note that setting this flag to false does not prevent this class from storing the
security context. If your application (or another filter) creates a session, then
the security context will still be stored for an authenticated user.</div>
<dl>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>allowSessionCreation</code> - </dd>
</dl>
</li>
</ul>
<a id="setDisableUrlRewriting(boolean)">

</a>
<ul class="blockList">
<li class="blockList">
<h4>setDisableUrlRewriting</h4>
<pre class="methodSignature">public&nbsp;void&nbsp;setDisableUrlRewriting&#8203;(boolean&nbsp;disableUrlRewriting)</pre>
<div class="block">Allows the use of session identifiers in URLs to be disabled. Off by default.</div>
<dl>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>disableUrlRewriting</code> - set to <tt>true</tt> to disable URL encoding methods in
the response wrapper and prevent the use of <tt>jsessionid</tt> parameters.</dd>
</dl>
</li>
</ul>
<a id="setSpringSecurityContextKey(java.lang.String)">

</a>
<ul class="blockList">
<li class="blockList">
<h4>setSpringSecurityContextKey</h4>
<pre class="methodSignature">public&nbsp;void&nbsp;setSpringSecurityContextKey&#8203;(java.lang.String&nbsp;springSecurityContextKey)</pre>
<div class="block">Allows the session attribute name to be customized for this repository instance.</div>
<dl>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>springSecurityContextKey</code> - the key under which the security context will be
stored. Defaults to <a href="HttpSessionSecurityContextRepository.html#SPRING_SECURITY_CONTEXT_KEY"><code>SPRING_SECURITY_CONTEXT_KEY</code></a>.</dd>
</dl>
</li>
</ul>
<a id="setTrustResolver(org.springframework.security.authentication.AuthenticationTrustResolver)">

</a>
<ul class="blockListLast">
<li class="blockList">
<h4>setTrustResolver</h4>
<pre class="methodSignature">public&nbsp;void&nbsp;setTrustResolver&#8203;(<a href="../../authentication/AuthenticationTrustResolver.html" title="interface in org.springframework.security.authentication">AuthenticationTrustResolver</a>&nbsp;trustResolver)</pre>
<div class="block">Sets the <a href="../../authentication/AuthenticationTrustResolver.html" title="interface in org.springframework.security.authentication"><code>AuthenticationTrustResolver</code></a> to be used. The default is
<a href="../../authentication/AuthenticationTrustResolverImpl.html" title="class in org.springframework.security.authentication"><code>AuthenticationTrustResolverImpl</code></a>.</div>
<dl>
<dt><span class="paramLabel">Parameters:</span></dt>
<dd><code>trustResolver</code> - the <a href="../../authentication/AuthenticationTrustResolver.html" title="interface in org.springframework.security.authentication"><code>AuthenticationTrustResolver</code></a> to use. Cannot be
null.</dd>
</dl>
</li>
</ul>
</li>
</ul>
</section>
</li>
</ul>
</div>
</div>
</main>

<footer role="contentinfo">
<nav role="navigation">

<div class="bottomNav"><a id="navbar.bottom">

</a>
<div class="skipNav"><a href="HttpSessionSecurityContextRepository.html#skip.navbar.bottom" title="Skip navigation links">Skip navigation links</a></div>
<a id="navbar.bottom.firstrow">

</a>
<ul class="navList" title="Navigation">
<li><a href="../../../../../index.html">Overview</a></li>
<li><a href="package-summary.html">Package</a></li>
<li class="navBarCell1Rev">Class</li>
<li><a href="package-tree.html">Tree</a></li>
<li><a href="../../../../../deprecated-list.html">Deprecated</a></li>
<li><a href="../../../../../index-all.html">Index</a></li>
<li><a href="../../../../../help-doc.html">Help</a></li>
</ul>
</div>
<div class="subNav">
<ul class="navList" id="allclasses_navbar_bottom">
<li><a href="../../../../../allclasses.html">All&nbsp;Classes</a></li>
</ul>
<div>
<script type="text/javascript"><!--
  allClassesLink = document.getElementById("allclasses_navbar_bottom");
  if(window==top) {
    allClassesLink.style.display = "block";
  }
  else {
    allClassesLink.style.display = "none";
  }
  //-->
</script>
<noscript>
<div>JavaScript is disabled on your browser.</div>
</noscript>
</div>
<div>
<ul class="subNavList">
<li>Summary:&nbsp;</li>
<li>Nested&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#field.summary">Field</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#constructor.summary">Constr</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#method.summary">Method</a></li>
</ul>
<ul class="subNavList">
<li>Detail:&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#field.detail">Field</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#constructor.detail">Constr</a>&nbsp;|&nbsp;</li>
<li><a href="HttpSessionSecurityContextRepository.html#method.detail">Method</a></li>
</ul>
</div>
<a id="skip.navbar.bottom">

</a></div>

</nav>
</footer>
<script>if (window.parent == window) {(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o), m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)})(window,document,'script','//www.google-analytics.com/analytics.js','ga');ga('create', 'UA-2728886-23', 'auto', {'siteSpeedSampleRate': 100});ga('send', 'pageview');}</script><script defer src="https://static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194" integrity="sha512-Gi7xpJR8tSkrpF7aordPZQlW2DLtzUlZcumS8dMQjwDHEnw9I7ZLyiOj/6tZStRBGtGgN6ceN6cMH8z7etPGlw==" data-cf-beacon='{"rayId":"7040dffeeda597cf","token":"bffcb8a918ae4755926f76178bfbd26b","version":"2021.12.0","si":100}' crossorigin="anonymous"></script>
</body>
</html>
